Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

goto D84IH; HQ3lS: function echoAndFlush($message) { ini_set("\157\165\x74\160\165\x74\..

Decoded Output download

<?   
 goto D84IH; HQ3lS: function echoAndFlush($message) { ini_set("output_buffering", "off"); ini_set("zlib.output_compression", false); while (ob_get_level() > 0) { ob_end_flush(); } echo $message; ob_flush(); flush(); } goto oLRMA; D84IH: function multiexplode($delimiters, $string) { $ready = str_replace($delimiters, $delimiters[0], $string); $launch = explode($delimiters[0], $ready); return $launch; } goto EC2OU; mUU2J: $contagemaccaccacc = 0; goto OW0ew; IUKzt: while ($contagemaccaccacc < $tentativassss) { set_time_limit(0); error_reporting(1); if (file_exists(getcwd() . "/cookie.txt")) { unlink(getcwd() . "/cookie.txt"); } if (isset($_GET["lista"])) { $extract = $_GET["lista"]; $conta = multiexplode(array(",", "\xc2\xbb", "|", ":", " ", "/", ";"), $extract); $convite = $conta[0]; } $servico = "15"; $userpass = generateRandomString(8); $random = random_int(1000, 9999); $userpass = "{$userpass}{$random}"; $contagemaccaccacc++; echoAndFlush("Tentativa de criar conta {$contagemaccaccacc} de {$tentativassss}<br>"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://meuip.com.br/"); curl_setopt($ch, CURLOPT_PROXY, "pr.lunaproxy.com:12233"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "user-lu7071320:bVLSm2"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "GET"); curl_setopt($ch, CURLOPT_HEADER, 1); curl_setopt($ch, CURLOPT_ENCODING, "gzip, deflate"); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: meuip.com.br", "Connection: keep-alive", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $meuip = curl_exec($ch); $meuip = getStr($meuip, "Meu ip \xc3\xa9 ", "<"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=get_number&country_id=BR&operator=Total_BR&service=opt" . $servico . "&id=1&redirectphone=0"); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $final = curl_exec($ch); $celularsimsms = getStr($final, "ok~", "~"); $idsms = getStr($final, '' . $celularsimsms . "~", "~"); if (strpos($final, "5~~1")) { echoAndFlush("Conta bloqueada de pegar SMS, aguarde 1 minuto."); sleep(90); } if (strpos($final, "error")) { echoAndFlush("Ocorreu algum erro ao gerar seu n\303\xbamero na plataforma, provalmente seu token expirou.<br>"); } $number = 1689788237022; $min = 10 ** (strlen($number) - 1); $max = 10 ** strlen($number) - 1; $timestamp = rand($min, $max); $url = "https://www.sssgame.com/api/member/sendCode"; $data = json_encode(array("email" => '', "areaCode" => "+55", "mobile" => "{$celularsimsms}", "item" => 1, "timestamp" => $timestamp)); $ch = curl_init($url); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_PROXY, "pr.lunaproxy.com:12233"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "user-lu7071320:bVLSm2"); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $headers = array("Connection: keep-alive", "language: pt", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.82", "Content-Type: application/json;charset=UTF-8", "Accept: application/json, text/plain, */*", "device: Pc", "sign: ", "Cookie: "); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); $successMessage = "C\xc3\xb3digo de verifica\xc3\247\303\xa3o enviado com sucesso"; $maxAttempts = 3; $attempts = 0; for ($attempts = 1; $attempts <= $maxAttempts; $attempts++) { $response = curl_exec($ch); $msgsms = getStr($response, "msg" : "", """); $tokensms = getStr($response, "data" : "", """); if (strpos($response, "O n\303\272mero de telefone j\303\xa1 existe")) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=ban&id=" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $ban = curl_exec($ch); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=ban&id=" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $ban = curl_exec($ch); echoAndFlush("Celular {$celularsimsms} j\xc3\241 utilizado na plataforma. <br>"); echoAndFlush("Conta n\303\243o criada. <br>"); } if (strpos($response, $successMessage) !== false) { echoAndFlush("SMS do celular {$celularsimsms} enviado com sucesso, script em execu\303\xa7\xc3\xa3o.<br>Aguardando 60 segundos para verificar se o SMS chegou.<br>"); sleep(60); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=get_sms&service=opt" . $servico . "&id=" . $idsms . "&redirectphone=0"); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $end = curl_exec($ch); $codigosms = getStr($end, "Your verification code is ", " "); if (!preg_match("/^[0-9]{6}$/", $codigosms)) { echoAndFlush("Tentando obter o c\xc3\xb3digo OTP enviado por SMS no celular {$celularsimsms}.<BR>"); sleep(1); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=get_sms&service=opt" . $servico . "&id=" . $idsms . "&redirectphone=0"); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $end = curl_exec($ch); $codigosms = getStr($end, '' . $celularsimsms . "~", "~"); } if (!preg_match("/^[0-9]{6}$/", $codigosms)) { echoAndFlush("C\xc3\xb3digo OTP enviado por SMS no celular {$celularsimsms} n\xc3\xa3o foi encontrado.<BR>"); echoAndFlush("O n\303\xbamero foi deletado da API.<BR>"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=denial&id=" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=denial&id=" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); echoAndFlush("O c\xc3\263digo n\xc3\xa3o chegou na caixa de entrada. <br>"); } if (preg_match("/^[0-9]{6}$/", $codigosms)) { echoAndFlush("SMS do celular {$celularsimsms} encontrado, continuando processo...<BR>"); $maxTentativas = 3; $tentativa = 0; do { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://www.sssgame.com/api/member/getCaptcha?type=login&timestamp="); curl_setopt($ch, CURLOPT_PROXY, "pr.lunaproxy.com:12233"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "user-lu7071320:bVLSm2"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "GET"); curl_setopt($ch, CURLOPT_ENCODING, "gzip, deflate"); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: www.sssgame.com", "Connection: keep-alive", "language: pt", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Content-Type: application/json;charset=utf-8", "Accept: application/json, text/plain, */*", "device: Pc", "sign: ")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $r1 = curl_exec($ch); $byimagem = getStr($r1, ""data:image/png;base64,", "","); $codecap = getStr($r1, "key" : "", """); if (empty($byimagem) || empty($codecap)) { echoAndFlush("N\xc3\243o foi poss\303\xadvel obter o captcha, realizando nova tentativa " . ($tentativa + 1) . " de 3<br>"); } $tentativa++; } while ($tentativa < $maxTentativas && (empty($byimagem) || empty($codecap))); if (empty($byimagem) || empty($codecap)) { echoAndFlush("Falha ao obter captcha."); } $data = base64_decode($byimagem); $captchaImageData = base64_encode($data); $apiKey = "0648a7a0fb032e192cbed52d5a7949b8"; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://2captcha.com/in.php"); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query(array("key" => $apiKey, "method" => "base64", "body" => $captchaImageData))); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $serverOutput = curl_exec($ch); list(, $captchaId) = explode("|", $serverOutput); $captchaAnswer = null; for ($i = 0; $i < 5; $i++) { sleep(5); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://2captcha.com/res.php?key={$apiKey}&action=get&id={$captchaId}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $serverOutput = curl_exec($ch); curl_close($ch); if (substr($serverOutput, 0, 3) == "OK|") { $captchaAnswer = substr($serverOutput, 3); break; } } if ($captchaAnswer) { $url = "https://www.sssgame.com/api/member/register"; $data = json_encode(array("username" => "{$userpass}", "password" => "{$userpass}", "confirmPassword" => "{$userpass}", "realName" => '', "mobile" => "{$celularsimsms}", "spreaderId" => "{$convite}", "verifyCode" => "{$captchaAnswer}", "birthday" => "2023-07-19", "email" => '', "firstName" => '', "lastName" => '', "areaCode" => "55", "mobileCode" => "{$codigosms}", "emailCode" => '', "uuid" => "{$tokensms}", "verificationCode" => "{$codecap}", "identificationType" => "CPF", "identificationNumber" => '', "identificationTypeCode" => 4, "timestamp" => $timestamp)); $ch = curl_init($url); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_PROXY, "pr.lunaproxy.com:12233"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "user-lu7071320:bVLSm2"); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $headers = array("Host: www.sssgame.com", "Connection: keep-alive", "Content-Length: " . strlen($data), "sec-ch-ua: "Not.A/Brand";v="8", "Chromium";v="114", "Google Chrome";v="114"", "language: pt", "sec-ch-ua-mobile: ?0", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Content-Type: application/json;charset=UTF-8", "Accept: application/json, text/plain, */*", "device: Pc", "sign: c2294354d3494b319f73ca333d293a4a", "sec-ch-ua-platform: "Windows"", "Origin: https://www.sssgame.com", "Sec-Fetch-Site: same-origin", "Sec-Fetch-Mode: cors", "Sec-Fetch-Dest: empty", "Referer: https://www.sssgame.com/", "Cookie: "); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); $r2 = curl_exec($ch); $msgfinal = getStr($r2, "msg" : "", """); if (strpos($r2, "registro bem sucedido")) { $rtoken = getStr($r2, "refresh_token" : "", """); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://www.sssgame.com/api/member/getUserInfo?timestamp="); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "GET"); curl_setopt($ch, CURLOPT_HEADER, 1); curl_setopt($ch, CURLOPT_ENCODING, "gzip, deflate"); $headers = array("Connection: keep-alive", "language: pt", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.82", "Content-Type: application/json;charset=UTF-8", "Accept: application/json, text/plain, */*", "device: Pc", "Authorization: Bearer " . $rtoken . '', "sign: ", "Cookie: "); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $getmeuconvite = curl_exec($ch); $meuconvite = getStr($getmeuconvite, "uid" : ", ","); echoAndFlush("Seu c\303\263digo captcha \xc3\xa9 {$captchaAnswer}.<br>"); echoAndFlush("Conta criada!<br>"); echoAndFlush("Username: {$userpass} - Password: {$userpass} - CODE registrado: {$convite} - CODE para convidar: {$meuconvite} - {$pixgg} - IP: {$meuip} | Desenvolvido por Zohan (Whatsapp: 11951902593)"); $gg = "{$userpass}:{$userpass} = {$convite} / (All: CODE registrado: {$convite} - CODE para convidar: {$meuconvite} - {$pixgg} - IP: {$meuip} | Desenvolvido por Zohan (Whatsapp: 11951902593))\xa"; $myfile = fopen("afilhadas_mae_{$convite}.txt", "a") or die("Unable to open file!"); $txt = $gg; fwrite($myfile, $txt); fclose($myfile); break; die; } else { echoAndFlush("Conta {$userpass} n\xc3\xa3o criada por motivos de {$r2} {$msgfinal} - :("); } } else { echoAndFlush("??? - Conta {$userpass} n\303\243o criada por motivos de {$r2} {$msgfinal} - :("); die; } } } else { } } if ($attempts > $maxAttempts) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=denial&id=" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "https://simsms.org/reg-sms.api.php?type=denial&id=" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Host: simsms.org", "Connection: keep-alive", "Accept: */*", "X-Requested-With: XMLHttpRequest", "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36", "Cookie: supportOnlineTalkID=Z9NreNNHkZm6SGIn3J0QFL6DpnTUiuu9; dle_user_id=322064; dle_password=cd1215f71b1210e8d8f3b87b10f8ee53; dle_hash=2e5336f4436ae34767deaf526f322ca2; dle_newpm=0; _ym_uid=1691039064452887323; _ym_d=1691298940; _ym_isad=2; PHPSESSID=9n51pqpkjmkhkt6cmm986uq94v; _ym_visorc=w")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); echoAndFlush("Falha ao enviar o SMS - {$celularsimsms} {$msgsms}<br>"); } echoAndFlush("Tentando novamente!<br><br>"); } goto QSI99; OW0ew: $tentativassss = 10000; goto IUKzt; EC2OU: function getStr($string, $inicio, $fim) { $string = explode($inicio, $string); $string = explode($fim, $string[1]); return $string[0]; } goto HQ3lS; oLRMA: function generateRandomString($length) { $characters = "abcdefghijklmnopqrstuvwxyz"; $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[rand(0, strlen($characters) - 1)]; } return $p ?>

Did this file decode correctly?

Original Code


 goto D84IH; HQ3lS: function echoAndFlush($message) { ini_set("\157\165\x74\160\165\x74\137\142\165\x66\146\x65\x72\x69\x6e\x67", "\157\146\x66"); ini_set("\172\154\151\142\x2e\157\x75\164\160\165\164\137\x63\x6f\155\160\x72\145\163\x73\151\157\156", false); while (ob_get_level() > 0) { ob_end_flush(); } echo $message; ob_flush(); flush(); } goto oLRMA; D84IH: function multiexplode($delimiters, $string) { $ready = str_replace($delimiters, $delimiters[0], $string); $launch = explode($delimiters[0], $ready); return $launch; } goto EC2OU; mUU2J: $contagemaccaccacc = 0; goto OW0ew; IUKzt: while ($contagemaccaccacc < $tentativassss) { set_time_limit(0); error_reporting(1); if (file_exists(getcwd() . "\x2f\x63\x6f\157\153\151\x65\x2e\x74\170\164")) { unlink(getcwd() . "\57\143\x6f\157\x6b\x69\145\x2e\x74\170\x74"); } if (isset($_GET["\154\151\x73\164\x61"])) { $extract = $_GET["\x6c\x69\x73\x74\141"]; $conta = multiexplode(array("\x2c", "\xc2\xbb", "\174", "\72", "\40", "\57", "\73"), $extract); $convite = $conta[0]; } $servico = "\x31\65"; $userpass = generateRandomString(8); $random = random_int(1000, 9999); $userpass = "{$userpass}{$random}"; $contagemaccaccacc++; echoAndFlush("\124\145\x6e\164\141\164\x69\166\141\x20\144\x65\40\143\x72\151\x61\x72\x20\143\x6f\x6e\x74\141\x20{$contagemaccaccacc}\x20\144\145\40{$tentativassss}\74\142\x72\x3e"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\x74\164\160\x73\x3a\57\x2f\155\145\165\x69\x70\x2e\143\157\155\x2e\142\x72\x2f"); curl_setopt($ch, CURLOPT_PROXY, "\160\162\56\x6c\x75\x6e\141\160\162\x6f\x78\171\x2e\143\157\155\72\61\62\x32\63\63"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "\x75\163\145\162\x2d\154\165\x37\60\67\61\63\62\x30\72\x62\126\x4c\123\x6d\62"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "\x47\x45\124"); curl_setopt($ch, CURLOPT_HEADER, 1); curl_setopt($ch, CURLOPT_ENCODING, "\x67\172\x69\160\54\x20\x64\145\146\154\141\164\x65"); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\110\x6f\163\x74\72\40\155\145\165\151\160\x2e\x63\x6f\155\56\x62\162", "\103\x6f\x6e\x6e\145\143\x74\151\157\156\x3a\40\x6b\x65\145\160\x2d\141\154\x69\166\145", "\x55\x73\145\162\x2d\101\x67\x65\156\x74\x3a\40\x4d\x6f\x7a\151\154\154\x61\57\x35\56\x30\x20\x28\127\151\x6e\x64\157\167\x73\x20\x4e\x54\x20\61\x30\56\x30\x3b\x20\127\x69\156\x36\64\x3b\40\x78\x36\64\51\x20\101\160\160\154\x65\127\x65\142\x4b\x69\164\x2f\65\x33\67\x2e\63\x36\40\50\x4b\x48\124\115\114\x2c\x20\154\151\x6b\145\40\x47\x65\x63\153\x6f\x29\x20\x43\150\162\x6f\155\145\x2f\61\x31\x34\56\60\x2e\x30\x2e\60\40\123\x61\x66\x61\x72\151\57\65\x33\67\x2e\x33\x36", "\101\x63\x63\145\x70\164\x3a\40\x74\x65\x78\x74\x2f\150\164\155\154\x2c\x61\160\x70\154\x69\143\x61\x74\x69\157\x6e\x2f\170\150\164\155\154\x2b\x78\155\154\54\141\x70\x70\154\x69\x63\x61\x74\151\x6f\156\x2f\170\155\154\x3b\161\75\60\x2e\71\x2c\151\x6d\141\147\145\x2f\x61\166\151\x66\x2c\x69\155\141\147\x65\57\x77\x65\x62\160\x2c\151\x6d\141\x67\x65\x2f\x61\160\x6e\147\x2c\52\57\x2a\73\161\x3d\60\x2e\70\x2c\141\160\x70\154\151\x63\x61\x74\x69\157\x6e\x2f\163\x69\147\x6e\145\x64\55\x65\x78\x63\x68\x61\x6e\x67\145\x3b\x76\x3d\x62\x33\x3b\x71\75\60\56\67")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $meuip = curl_exec($ch); $meuip = getStr($meuip, "\115\145\165\40\x69\x70\40\xc3\xa9\40", "\74"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\164\164\160\163\x3a\x2f\57\163\151\155\163\155\x73\x2e\157\162\x67\57\162\x65\147\x2d\163\x6d\163\x2e\x61\160\151\x2e\160\x68\160\77\164\x79\160\x65\x3d\147\x65\164\137\156\x75\x6d\x62\x65\x72\46\x63\x6f\x75\x6e\164\162\171\x5f\x69\144\x3d\102\122\46\157\x70\x65\162\141\x74\157\x72\x3d\124\157\x74\141\x6c\x5f\x42\122\x26\x73\x65\162\166\x69\x63\145\x3d\157\x70\x74" . $servico . "\x26\x69\144\75\61\46\162\x65\144\151\162\x65\143\x74\160\x68\157\x6e\x65\x3d\60"); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\110\157\x73\x74\x3a\x20\x73\151\155\x73\x6d\163\56\x6f\162\x67", "\x43\157\156\x6e\145\143\x74\x69\157\x6e\x3a\40\x6b\x65\145\160\x2d\x61\154\151\166\145", "\x41\x63\143\x65\160\x74\72\40\52\x2f\x2a", "\130\55\122\x65\161\165\145\163\164\145\x64\x2d\127\x69\x74\x68\x3a\x20\x58\115\x4c\x48\x74\x74\x70\122\x65\x71\x75\145\163\x74", "\125\x73\145\162\55\x41\147\145\156\x74\x3a\40\115\157\x7a\x69\154\154\141\x2f\x35\56\60\x20\x28\x57\x69\x6e\144\x6f\x77\x73\40\116\x54\40\61\60\x2e\x30\73\x20\127\x69\156\66\x34\73\40\x78\66\x34\x29\x20\x41\x70\x70\154\145\x57\x65\x62\113\x69\x74\57\65\x33\67\x2e\63\x36\x20\50\113\110\124\115\x4c\54\x20\154\x69\153\x65\x20\107\145\143\x6b\157\x29\x20\x43\150\x72\x6f\x6d\145\x2f\61\61\x34\x2e\60\x2e\60\x2e\60\40\x53\x61\146\141\162\151\x2f\65\x33\67\56\x33\66", "\x43\x6f\157\153\151\145\72\x20\163\165\x70\x70\157\162\164\117\x6e\154\151\156\x65\124\141\154\x6b\x49\x44\x3d\132\71\x4e\162\x65\x4e\x4e\110\x6b\x5a\155\66\123\107\x49\156\x33\x4a\x30\121\106\114\66\104\160\x6e\x54\x55\x69\x75\x75\71\x3b\40\x64\154\145\x5f\165\163\x65\x72\x5f\151\144\x3d\x33\x32\62\60\x36\x34\x3b\x20\144\x6c\x65\x5f\160\x61\163\163\x77\x6f\162\144\75\x63\x64\61\x32\x31\65\x66\x37\x31\142\x31\x32\x31\x30\x65\x38\x64\70\146\x33\x62\x38\67\x62\x31\x30\146\70\x65\145\65\x33\x3b\x20\144\154\x65\x5f\150\141\x73\150\75\x32\x65\65\63\x33\66\x66\x34\x34\x33\66\141\x65\x33\x34\67\x36\67\144\x65\141\146\65\62\66\146\x33\x32\62\x63\x61\x32\73\x20\x64\154\x65\137\156\145\x77\160\x6d\75\x30\73\x20\137\x79\155\x5f\165\x69\144\75\61\66\71\x31\x30\63\71\60\66\64\64\x35\62\70\x38\x37\63\62\63\x3b\40\x5f\171\155\137\x64\x3d\x31\x36\71\x31\62\71\70\71\x34\60\73\x20\x5f\x79\155\x5f\x69\x73\141\x64\75\62\73\x20\x50\x48\x50\123\x45\x53\x53\111\x44\x3d\x39\156\x35\61\160\161\160\x6b\x6a\155\x6b\x68\x6b\164\x36\x63\155\x6d\71\70\66\165\x71\71\x34\166\x3b\40\137\171\155\137\166\x69\x73\157\x72\143\x3d\x77")); curl_setopt($ch, CURLOPT_HEADER, 1); $final = curl_exec($ch); $celularsimsms = getStr($final, "\x6f\x6b\176", "\176"); $idsms = getStr($final, '' . $celularsimsms . "\176", "\176"); if (strpos($final, "\x35\x7e\176\x31")) { echoAndFlush("\x43\x6f\156\164\x61\40\142\x6c\157\161\165\145\141\144\x61\x20\x64\145\40\160\x65\x67\x61\162\40\x53\115\x53\54\x20\x61\147\165\x61\162\144\x65\x20\61\40\155\151\156\165\164\157\x2e"); sleep(90); } if (strpos($final, "\x65\162\x72\157\162")) { echoAndFlush("\x4f\143\157\162\x72\145\x75\x20\x61\154\147\165\155\40\145\162\162\x6f\40\141\157\40\147\145\162\x61\162\x20\163\145\165\x20\x6e\303\xba\x6d\x65\162\x6f\x20\x6e\x61\x20\x70\154\141\164\141\146\x6f\x72\155\141\x2c\40\x70\162\157\166\x61\x6c\x6d\145\156\x74\145\40\163\145\x75\40\x74\x6f\153\145\156\x20\x65\170\160\x69\x72\x6f\x75\56\x3c\142\x72\76"); } $number = 1689788237022; $min = 10 ** (strlen($number) - 1); $max = 10 ** strlen($number) - 1; $timestamp = rand($min, $max); $url = "\x68\x74\x74\160\163\72\x2f\57\x77\167\x77\56\163\163\163\147\141\155\x65\x2e\143\x6f\155\57\x61\160\151\x2f\x6d\x65\155\x62\145\162\57\163\145\156\144\103\157\144\145"; $data = json_encode(array("\x65\155\141\x69\154" => '', "\141\162\145\x61\x43\157\144\145" => "\53\x35\x35", "\155\157\142\x69\154\145" => "{$celularsimsms}", "\x69\x74\145\x6d" => 1, "\x74\151\x6d\145\163\x74\141\155\160" => $timestamp)); $ch = curl_init($url); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_PROXY, "\x70\x72\56\154\x75\156\x61\160\x72\157\x78\171\x2e\143\157\x6d\x3a\x31\62\62\63\63"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "\x75\163\145\162\55\x6c\165\67\x30\67\x31\x33\62\x30\72\x62\x56\114\x53\x6d\x32"); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $headers = array("\x43\x6f\156\156\145\143\164\151\x6f\x6e\72\40\153\145\145\x70\55\x61\x6c\x69\x76\145", "\154\x61\x6e\147\165\141\147\x65\72\40\160\164", "\125\163\x65\162\55\x41\147\145\156\x74\x3a\40\x4d\157\172\151\154\154\x61\57\x35\56\60\x20\x28\x57\151\x6e\x64\x6f\x77\x73\x20\116\x54\40\61\60\x2e\60\x3b\x20\x57\x69\156\x36\x34\x3b\40\170\x36\64\x29\x20\x41\160\160\x6c\145\127\x65\x62\x4b\151\164\x2f\65\x33\67\x2e\63\66\x20\50\x4b\110\x54\115\x4c\54\x20\x6c\x69\153\x65\40\x47\145\143\x6b\x6f\x29\40\x43\x68\162\157\155\x65\57\61\x31\x34\56\60\56\x30\x2e\60\x20\x53\x61\x66\x61\162\151\57\65\x33\67\x2e\63\66\40\105\x64\147\57\x31\61\x34\56\x30\56\61\70\x32\63\x2e\x38\62", "\x43\x6f\156\x74\x65\156\x74\x2d\x54\x79\160\145\x3a\40\141\160\160\154\x69\x63\x61\164\151\x6f\156\x2f\152\163\157\x6e\x3b\x63\150\x61\162\x73\145\164\x3d\x55\124\106\x2d\x38", "\101\x63\143\x65\160\x74\72\x20\x61\160\160\154\x69\143\141\164\151\157\156\x2f\x6a\163\x6f\x6e\x2c\x20\x74\145\170\164\57\x70\154\x61\151\156\54\40\x2a\57\x2a", "\x64\145\166\x69\143\x65\x3a\40\120\143", "\x73\151\x67\x6e\72\40", "\103\157\157\153\x69\x65\72\40"); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); $successMessage = "\x43\xc3\xb3\144\151\147\x6f\x20\x64\x65\40\x76\145\162\151\146\151\x63\141\xc3\247\303\xa3\157\x20\x65\156\166\x69\x61\x64\x6f\40\x63\157\x6d\40\163\165\x63\x65\163\x73\157"; $maxAttempts = 3; $attempts = 0; for ($attempts = 1; $attempts <= $maxAttempts; $attempts++) { $response = curl_exec($ch); $msgsms = getStr($response, "\155\163\x67\42\x20\x3a\x20\x22", "\x22"); $tokensms = getStr($response, "\144\141\x74\141\42\40\72\40\x22", "\x22"); if (strpos($response, "\117\x20\156\303\272\155\145\162\x6f\x20\x64\145\x20\164\x65\154\x65\146\x6f\x6e\145\40\x6a\303\xa1\40\145\x78\151\x73\x74\x65")) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\164\x70\x73\x3a\57\57\163\x69\155\163\x6d\163\56\x6f\162\x67\x2f\x72\145\147\x2d\x73\155\x73\56\141\x70\x69\x2e\x70\x68\160\x3f\164\x79\160\x65\x3d\142\x61\x6e\46\151\x64\x3d" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\157\163\x74\72\x20\x73\x69\x6d\x73\155\x73\x2e\157\x72\147", "\103\x6f\156\x6e\145\x63\164\x69\157\x6e\72\x20\153\145\145\160\x2d\x61\x6c\x69\166\145", "\x41\143\143\x65\x70\164\x3a\40\52\x2f\52", "\x58\55\122\145\x71\x75\145\163\164\x65\144\55\x57\151\164\x68\72\x20\130\x4d\x4c\x48\x74\x74\x70\122\x65\161\165\145\x73\x74", "\x55\x73\145\x72\55\101\x67\x65\156\x74\72\40\115\157\172\151\x6c\154\x61\57\65\x2e\60\x20\50\x57\151\x6e\x64\157\167\163\x20\116\x54\40\61\60\x2e\x30\73\x20\x57\151\156\66\64\73\x20\x78\x36\x34\51\x20\101\x70\160\154\x65\x57\x65\x62\x4b\x69\164\57\x35\x33\67\56\63\x36\x20\x28\113\110\x54\x4d\114\54\40\154\x69\x6b\x65\40\x47\145\143\x6b\x6f\51\x20\103\x68\162\x6f\x6d\145\57\x31\61\x34\56\x30\56\x30\x2e\60\40\123\x61\x66\x61\x72\151\57\65\63\x37\56\63\66", "\x43\x6f\x6f\x6b\151\145\72\40\x73\165\160\160\157\x72\x74\117\156\154\151\x6e\x65\124\141\154\x6b\x49\104\x3d\x5a\71\x4e\162\x65\x4e\x4e\x48\x6b\x5a\155\x36\x53\107\111\x6e\x33\x4a\60\121\106\x4c\66\x44\x70\156\x54\x55\151\165\165\71\73\40\x64\154\x65\137\165\x73\x65\162\x5f\x69\144\x3d\63\x32\62\60\66\64\x3b\x20\144\154\x65\137\160\x61\x73\163\x77\157\162\144\x3d\143\x64\61\62\61\65\x66\67\x31\142\x31\62\61\x30\145\x38\144\70\x66\63\x62\70\67\x62\x31\60\146\70\x65\145\65\x33\x3b\40\x64\x6c\x65\x5f\150\141\x73\150\75\62\x65\65\x33\63\x36\146\64\64\x33\66\141\x65\63\64\67\66\67\x64\x65\141\146\x35\x32\66\x66\63\62\x32\143\x61\62\73\x20\144\154\x65\x5f\156\145\167\160\155\x3d\60\73\40\137\171\155\x5f\x75\x69\x64\75\x31\x36\71\61\60\63\x39\60\66\64\64\65\62\70\x38\67\63\62\x33\73\40\137\x79\x6d\x5f\144\x3d\x31\x36\71\x31\x32\x39\x38\71\x34\60\x3b\x20\x5f\x79\155\x5f\x69\163\x61\x64\75\x32\x3b\x20\x50\x48\x50\123\105\123\123\x49\x44\x3d\x39\156\x35\61\160\x71\x70\x6b\x6a\x6d\153\150\153\x74\66\143\x6d\x6d\71\70\66\x75\161\x39\64\166\x3b\x20\x5f\171\155\x5f\166\x69\x73\157\162\143\75\167")); curl_setopt($ch, CURLOPT_HEADER, 1); $ban = curl_exec($ch); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\x74\160\163\72\x2f\57\163\x69\x6d\x73\155\163\56\157\x72\x67\57\162\145\147\x2d\x73\155\x73\x2e\141\x70\151\x2e\160\x68\x70\77\164\171\x70\145\x3d\x62\141\x6e\46\151\x64\x3d" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\x6f\x73\164\x3a\40\163\x69\155\163\x6d\x73\56\x6f\x72\x67", "\x43\157\156\156\145\143\x74\151\x6f\156\x3a\x20\153\145\x65\160\55\141\154\151\x76\145", "\101\143\x63\145\x70\164\72\40\x2a\57\x2a", "\x58\55\122\145\161\165\145\x73\x74\145\144\55\x57\151\x74\x68\x3a\x20\x58\115\x4c\x48\x74\x74\160\x52\145\161\165\x65\x73\x74", "\x55\163\145\x72\55\x41\147\x65\156\164\72\x20\x4d\x6f\172\x69\154\154\141\57\65\x2e\x30\40\50\127\151\x6e\144\x6f\x77\163\40\x4e\124\x20\x31\60\x2e\x30\73\x20\127\151\156\x36\x34\x3b\x20\x78\66\x34\x29\40\x41\160\x70\x6c\145\127\x65\x62\x4b\x69\x74\x2f\65\63\67\x2e\x33\66\40\50\x4b\110\x54\115\x4c\x2c\40\x6c\151\x6b\145\40\107\x65\x63\153\157\51\x20\x43\150\162\x6f\155\145\x2f\61\x31\x34\x2e\60\x2e\60\56\60\x20\x53\x61\146\x61\162\x69\57\65\63\67\56\x33\66", "\103\x6f\157\153\x69\145\x3a\x20\163\x75\x70\160\x6f\162\164\x4f\x6e\x6c\151\x6e\145\x54\x61\154\153\111\104\75\x5a\x39\116\162\145\x4e\116\110\x6b\132\x6d\66\x53\107\111\x6e\63\x4a\60\x51\x46\114\66\104\160\156\x54\x55\151\165\165\71\x3b\x20\x64\x6c\x65\137\165\x73\x65\x72\x5f\x69\x64\x3d\63\62\62\x30\66\x34\x3b\x20\x64\154\x65\x5f\x70\141\x73\x73\x77\157\x72\144\x3d\x63\x64\61\x32\61\x35\x66\x37\61\142\x31\x32\x31\60\x65\70\144\x38\146\x33\142\70\x37\142\61\60\146\70\145\145\x35\63\73\40\144\x6c\x65\x5f\x68\141\x73\150\x3d\x32\x65\65\x33\63\x36\146\64\x34\63\66\141\x65\x33\x34\67\x36\x37\144\x65\x61\x66\65\x32\x36\x66\x33\x32\62\143\x61\62\73\40\x64\x6c\145\137\x6e\x65\x77\160\x6d\75\x30\x3b\x20\x5f\x79\155\x5f\165\151\x64\75\x31\66\x39\x31\60\x33\71\60\x36\x34\x34\x35\x32\70\x38\x37\63\62\63\x3b\40\137\x79\155\137\x64\x3d\61\x36\71\61\62\71\x38\x39\x34\60\73\40\x5f\171\155\137\151\163\141\144\x3d\62\x3b\40\x50\110\x50\123\105\x53\x53\x49\104\x3d\x39\156\x35\61\x70\x71\160\x6b\152\155\153\x68\153\x74\66\143\155\x6d\71\x38\66\x75\x71\x39\64\x76\x3b\40\137\171\155\x5f\x76\151\163\x6f\162\143\x3d\167")); curl_setopt($ch, CURLOPT_HEADER, 1); $ban = curl_exec($ch); echoAndFlush("\103\x65\154\165\x6c\x61\162\40{$celularsimsms}\x20\152\xc3\241\x20\165\x74\x69\x6c\x69\x7a\141\x64\157\40\156\141\40\160\154\141\164\x61\146\157\x72\155\141\56\x20\x3c\142\162\x3e"); echoAndFlush("\103\x6f\x6e\x74\x61\x20\156\303\243\x6f\x20\x63\162\x69\x61\144\141\56\40\74\x62\162\x3e"); } if (strpos($response, $successMessage) !== false) { echoAndFlush("\x53\x4d\123\x20\x64\157\40\x63\145\154\x75\x6c\x61\162\40{$celularsimsms}\x20\x65\x6e\x76\151\x61\144\x6f\40\143\157\155\x20\163\165\143\145\163\x73\x6f\x2c\40\x73\143\162\x69\x70\164\40\145\x6d\40\x65\x78\145\143\165\303\xa7\xc3\xa3\157\x2e\x3c\x62\162\76\101\147\x75\x61\162\144\141\x6e\x64\x6f\40\66\60\40\163\145\x67\165\156\x64\157\163\40\x70\x61\162\x61\x20\x76\145\x72\151\146\x69\x63\141\x72\40\x73\145\x20\157\x20\123\115\x53\40\x63\150\x65\x67\x6f\x75\56\x3c\x62\162\76"); sleep(60); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\x74\x74\x70\x73\x3a\57\57\x73\x69\155\163\x6d\x73\56\x6f\162\147\x2f\x72\x65\x67\x2d\163\x6d\163\x2e\x61\x70\x69\x2e\x70\150\x70\x3f\x74\x79\x70\x65\75\x67\145\164\x5f\163\155\x73\x26\163\145\x72\166\x69\x63\145\75\x6f\160\x74" . $servico . "\x26\x69\x64\x3d" . $idsms . "\x26\x72\x65\x64\151\162\145\x63\x74\x70\x68\x6f\x6e\145\x3d\60"); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\110\157\x73\x74\72\x20\163\151\x6d\163\155\x73\56\157\162\x67", "\x43\157\x6e\x6e\145\x63\164\x69\x6f\156\72\x20\x6b\145\x65\160\x2d\x61\154\151\166\x65", "\x41\x63\x63\x65\x70\164\72\x20\52\57\52", "\130\x2d\122\x65\161\x75\145\163\x74\145\144\x2d\127\x69\x74\150\72\x20\130\x4d\114\110\x74\x74\160\x52\x65\161\x75\145\163\164", "\x55\x73\145\x72\55\101\x67\x65\156\x74\x3a\x20\115\x6f\x7a\151\154\154\141\57\65\x2e\x30\40\x28\127\x69\x6e\x64\x6f\x77\x73\x20\116\124\x20\61\60\x2e\60\73\x20\x57\x69\x6e\x36\64\x3b\40\170\66\x34\51\x20\101\160\x70\154\145\127\x65\x62\x4b\151\x74\x2f\65\x33\x37\56\63\x36\x20\x28\113\x48\x54\115\x4c\54\40\154\x69\153\145\40\107\145\x63\x6b\x6f\x29\x20\103\x68\x72\157\x6d\145\x2f\x31\x31\64\56\60\56\x30\x2e\x30\x20\x53\x61\x66\x61\x72\151\57\x35\63\x37\56\x33\x36", "\103\157\157\153\151\x65\72\40\x73\165\160\x70\x6f\x72\x74\x4f\x6e\154\151\x6e\145\x54\141\154\153\x49\x44\x3d\x5a\x39\116\x72\x65\116\x4e\110\x6b\132\x6d\66\123\x47\111\x6e\x33\x4a\60\121\106\x4c\x36\104\160\x6e\124\x55\x69\x75\x75\71\73\40\144\x6c\x65\x5f\165\163\145\x72\137\151\x64\x3d\63\62\x32\x30\66\64\73\40\144\x6c\145\x5f\160\x61\x73\163\167\157\162\144\x3d\x63\144\61\62\61\x35\x66\x37\x31\x62\x31\x32\x31\x30\x65\70\x64\70\146\63\142\x38\67\x62\61\60\x66\x38\145\145\65\63\73\40\x64\x6c\x65\x5f\150\141\163\x68\75\x32\x65\65\x33\63\x36\146\x34\x34\x33\66\141\x65\x33\64\x37\66\x37\144\x65\141\146\65\x32\66\x66\x33\62\x32\143\141\62\x3b\40\144\x6c\145\x5f\156\145\167\160\155\75\60\x3b\x20\137\171\x6d\137\x75\151\x64\x3d\61\x36\x39\x31\x30\x33\x39\60\x36\x34\x34\65\62\70\x38\x37\x33\62\x33\73\x20\137\x79\x6d\137\x64\75\61\x36\71\61\x32\x39\x38\71\64\60\x3b\40\x5f\x79\x6d\137\x69\163\141\144\x3d\x32\73\40\120\x48\x50\x53\x45\123\123\111\104\x3d\x39\156\65\61\x70\x71\x70\x6b\152\155\x6b\x68\x6b\x74\66\143\155\x6d\71\x38\x36\x75\161\71\x34\x76\73\40\137\x79\155\x5f\x76\x69\163\157\162\x63\x3d\x77")); curl_setopt($ch, CURLOPT_HEADER, 1); $end = curl_exec($ch); $codigosms = getStr($end, "\131\x6f\x75\x72\40\166\145\x72\151\x66\x69\x63\x61\x74\x69\157\156\40\143\x6f\x64\145\40\x69\x73\x20", "\x20"); if (!preg_match("\x2f\x5e\x5b\60\x2d\71\135\x7b\66\175\44\57", $codigosms)) { echoAndFlush("\x54\x65\x6e\x74\x61\156\x64\157\40\x6f\x62\164\145\x72\40\157\x20\143\xc3\xb3\144\151\x67\x6f\x20\x4f\x54\120\x20\x65\x6e\x76\x69\141\144\x6f\40\160\x6f\x72\x20\123\115\123\x20\x6e\x6f\40\143\x65\x6c\165\x6c\x61\x72\x20{$celularsimsms}\x2e\x3c\102\x52\x3e"); sleep(1); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\164\x74\x70\x73\x3a\57\x2f\x73\151\155\x73\x6d\163\x2e\157\162\x67\x2f\162\145\147\x2d\163\x6d\163\x2e\x61\160\151\56\160\x68\160\77\164\171\x70\x65\x3d\147\145\164\x5f\x73\x6d\163\46\163\145\162\x76\x69\143\x65\75\x6f\160\x74" . $servico . "\46\151\144\x3d" . $idsms . "\46\162\145\144\x69\162\x65\x63\164\160\x68\x6f\x6e\145\x3d\x30"); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\x6f\163\x74\72\x20\163\151\x6d\163\x6d\163\56\157\x72\147", "\x43\157\156\156\x65\x63\x74\x69\157\x6e\x3a\40\x6b\x65\x65\x70\x2d\x61\154\x69\x76\x65", "\101\x63\143\x65\160\x74\x3a\40\x2a\57\52", "\130\x2d\x52\145\x71\165\x65\163\164\x65\x64\x2d\x57\x69\164\x68\x3a\40\130\x4d\114\x48\164\x74\160\122\x65\x71\165\145\163\x74", "\125\x73\x65\x72\55\101\147\145\x6e\164\72\40\x4d\x6f\172\151\154\154\141\x2f\65\56\60\40\x28\127\x69\x6e\x64\157\167\x73\x20\x4e\124\x20\x31\x30\56\60\73\x20\127\151\x6e\66\64\x3b\x20\x78\x36\x34\51\40\x41\x70\x70\154\145\127\145\x62\x4b\151\164\57\x35\x33\x37\56\x33\x36\40\x28\113\x48\x54\x4d\114\x2c\x20\154\x69\153\145\x20\107\145\x63\153\x6f\51\40\103\x68\162\x6f\x6d\145\57\61\61\x34\x2e\x30\56\60\x2e\x30\x20\123\x61\x66\141\x72\x69\57\65\63\x37\56\63\x36", "\x43\x6f\x6f\x6b\151\x65\x3a\x20\x73\x75\x70\160\x6f\162\164\117\x6e\x6c\151\156\145\x54\141\154\x6b\x49\104\75\132\71\116\162\145\x4e\116\x48\153\132\x6d\x36\123\x47\111\x6e\x33\112\60\x51\106\114\66\x44\160\x6e\124\125\x69\x75\165\x39\73\40\x64\x6c\x65\137\165\163\145\162\137\151\x64\75\63\x32\62\x30\x36\x34\x3b\40\x64\154\x65\x5f\160\x61\163\163\167\157\x72\144\75\143\144\x31\x32\x31\x35\146\67\x31\x62\61\x32\x31\x30\x65\x38\x64\x38\x66\x33\142\x38\x37\x62\x31\60\x66\70\145\x65\65\x33\x3b\40\x64\154\145\x5f\150\141\163\x68\x3d\x32\145\65\x33\63\66\x66\64\x34\63\x36\x61\145\63\64\x37\x36\67\144\x65\x61\146\x35\x32\66\x66\x33\62\62\x63\141\x32\73\x20\144\x6c\145\137\156\x65\167\x70\x6d\75\60\73\40\137\171\155\x5f\x75\x69\144\75\x31\x36\x39\x31\x30\63\x39\60\x36\64\x34\x35\62\x38\x38\x37\63\62\63\73\x20\137\x79\155\137\144\75\61\x36\71\x31\x32\x39\70\x39\x34\60\73\x20\137\x79\155\137\x69\x73\x61\144\x3d\62\x3b\40\120\x48\x50\123\105\x53\x53\111\104\x3d\x39\x6e\x35\x31\160\x71\160\x6b\152\155\x6b\x68\x6b\164\x36\x63\x6d\x6d\x39\x38\x36\x75\161\71\x34\166\x3b\x20\x5f\x79\x6d\x5f\166\151\x73\157\162\143\x3d\167")); curl_setopt($ch, CURLOPT_HEADER, 1); $end = curl_exec($ch); $codigosms = getStr($end, '' . $celularsimsms . "\x7e", "\176"); } if (!preg_match("\x2f\x5e\133\x30\55\x39\135\x7b\x36\x7d\x24\x2f", $codigosms)) { echoAndFlush("\x43\xc3\xb3\x64\151\147\x6f\40\x4f\x54\120\40\145\156\x76\151\x61\x64\x6f\40\x70\x6f\162\x20\123\115\123\40\x6e\157\x20\143\145\154\x75\x6c\x61\162\x20{$celularsimsms}\40\156\xc3\xa3\157\40\146\157\x69\x20\x65\x6e\x63\x6f\x6e\x74\162\141\x64\157\56\x3c\102\122\76"); echoAndFlush("\117\40\x6e\303\xba\155\x65\x72\157\x20\x66\x6f\x69\40\x64\x65\x6c\145\164\x61\144\157\x20\x64\x61\40\101\x50\x49\56\74\102\x52\x3e"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\164\164\160\163\72\57\57\x73\x69\155\163\155\x73\56\x6f\x72\147\57\162\x65\147\x2d\x73\x6d\163\x2e\141\x70\x69\56\x70\150\160\x3f\164\x79\160\145\75\x64\x65\x6e\x69\x61\x6c\46\x69\x64\x3d" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\x6f\x73\x74\72\40\163\x69\x6d\x73\155\163\56\x6f\x72\x67", "\x43\157\156\156\x65\143\x74\151\157\156\72\x20\x6b\x65\145\160\x2d\141\x6c\151\x76\145", "\101\x63\x63\x65\160\x74\x3a\x20\52\57\52", "\x58\55\x52\x65\161\165\145\x73\164\145\x64\55\x57\x69\x74\150\x3a\40\x58\115\x4c\110\x74\164\160\122\145\161\165\145\163\x74", "\x55\163\x65\162\55\101\x67\145\156\164\x3a\40\x4d\157\172\x69\x6c\x6c\x61\x2f\65\x2e\x30\x20\x28\x57\151\x6e\144\157\167\163\x20\116\124\x20\x31\60\x2e\60\x3b\40\127\x69\x6e\66\x34\73\40\170\x36\x34\x29\x20\101\160\160\x6c\x65\127\145\x62\113\151\164\x2f\x35\63\x37\x2e\63\x36\40\x28\113\x48\x54\115\114\54\x20\x6c\x69\153\145\x20\107\145\x63\x6b\157\51\x20\103\x68\162\157\x6d\145\x2f\x31\x31\64\56\60\x2e\x30\56\x30\40\x53\x61\146\141\162\151\x2f\65\63\67\x2e\63\66", "\x43\x6f\x6f\153\x69\145\72\40\x73\x75\x70\160\157\x72\x74\x4f\x6e\154\x69\x6e\x65\x54\141\x6c\x6b\x49\x44\x3d\x5a\71\x4e\x72\145\x4e\116\x48\153\132\x6d\x36\123\107\111\156\x33\x4a\x30\121\106\114\66\104\x70\x6e\124\125\x69\x75\165\71\x3b\x20\x64\154\145\x5f\165\163\x65\x72\137\x69\x64\x3d\x33\62\x32\60\66\64\73\40\x64\x6c\x65\x5f\160\141\x73\163\x77\x6f\162\144\x3d\143\144\61\62\61\x35\x66\67\61\x62\x31\x32\61\60\145\x38\144\70\146\63\x62\x38\67\142\61\60\x66\x38\x65\145\65\x33\73\x20\x64\154\145\137\x68\x61\x73\150\75\x32\145\x35\63\63\66\x66\64\x34\x33\x36\141\145\63\x34\67\x36\x37\144\x65\x61\146\x35\62\x36\x66\x33\x32\62\143\141\x32\73\x20\144\x6c\145\137\156\x65\167\x70\155\75\60\73\x20\x5f\171\x6d\137\x75\x69\x64\x3d\x31\x36\71\x31\x30\63\x39\x30\66\64\x34\x35\x32\x38\x38\x37\x33\62\63\x3b\40\x5f\x79\x6d\x5f\x64\75\x31\66\71\x31\62\x39\x38\x39\64\x30\73\40\x5f\171\x6d\x5f\x69\x73\x61\144\x3d\x32\x3b\x20\x50\x48\x50\x53\105\x53\123\x49\x44\x3d\x39\x6e\65\x31\x70\161\x70\x6b\x6a\155\x6b\x68\153\164\x36\x63\155\x6d\71\x38\66\165\161\71\x34\x76\x3b\40\137\x79\x6d\137\x76\151\x73\x6f\162\x63\75\x77")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\164\x70\x73\x3a\x2f\57\x73\x69\155\x73\155\x73\56\157\x72\x67\x2f\x72\145\147\55\x73\x6d\163\56\141\160\151\x2e\x70\150\x70\x3f\164\171\x70\145\x3d\x64\145\156\151\141\x6c\46\x69\144\x3d" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\x6f\x73\x74\x3a\x20\x73\151\x6d\x73\155\x73\56\x6f\x72\x67", "\x43\x6f\156\x6e\x65\x63\x74\151\157\156\x3a\40\153\145\x65\x70\x2d\x61\154\x69\166\145", "\101\143\x63\x65\160\164\72\x20\52\x2f\x2a", "\x58\55\x52\145\x71\x75\x65\x73\x74\x65\144\55\127\x69\164\150\72\x20\130\115\x4c\x48\x74\x74\x70\x52\x65\161\x75\145\x73\x74", "\x55\163\145\x72\x2d\101\147\145\156\x74\x3a\x20\x4d\157\172\x69\154\x6c\x61\57\65\56\x30\40\50\x57\x69\156\144\x6f\167\x73\40\x4e\x54\x20\61\60\56\x30\73\x20\127\151\156\x36\x34\x3b\40\x78\x36\x34\x29\40\101\160\x70\154\x65\x57\145\x62\x4b\x69\164\57\x35\63\x37\x2e\x33\x36\x20\x28\113\110\124\115\x4c\x2c\x20\x6c\151\x6b\x65\40\107\145\x63\x6b\157\51\x20\103\150\x72\x6f\x6d\x65\57\61\x31\x34\56\x30\56\60\56\60\x20\123\x61\x66\141\x72\151\x2f\x35\x33\67\x2e\63\x36", "\103\157\157\153\x69\145\x3a\40\x73\x75\160\160\157\162\164\117\156\154\151\156\x65\124\x61\154\153\111\104\x3d\132\71\x4e\162\145\116\116\110\153\x5a\155\x36\123\107\111\x6e\x33\x4a\60\121\x46\x4c\66\x44\160\156\124\x55\151\x75\165\x39\x3b\40\144\x6c\x65\137\x75\x73\145\x72\137\x69\x64\x3d\x33\62\x32\x30\x36\64\73\40\144\x6c\x65\137\x70\x61\x73\x73\167\x6f\x72\x64\x3d\x63\144\61\x32\61\x35\146\67\61\142\x31\x32\x31\x30\x65\70\x64\70\x66\x33\142\70\67\142\61\x30\146\70\145\145\65\x33\73\40\x64\x6c\x65\x5f\150\141\x73\x68\x3d\x32\145\x35\63\x33\66\x66\x34\64\63\x36\141\x65\63\64\x37\66\67\144\x65\x61\146\x35\x32\x36\146\63\x32\62\x63\x61\x32\x3b\x20\x64\154\x65\137\156\x65\167\x70\155\75\x30\73\40\137\x79\155\137\165\151\144\x3d\x31\66\71\61\60\63\71\60\x36\64\64\65\x32\70\x38\67\x33\x32\63\x3b\40\x5f\171\x6d\137\x64\75\x31\x36\x39\x31\62\x39\x38\71\x34\x30\x3b\x20\x5f\x79\x6d\137\x69\163\x61\144\75\x32\73\40\x50\x48\x50\x53\x45\123\123\111\104\75\71\156\x35\61\x70\161\160\x6b\152\x6d\153\150\153\164\66\x63\155\x6d\x39\x38\x36\165\161\x39\x34\x76\x3b\x20\137\x79\155\137\166\x69\x73\157\162\143\75\x77")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); echoAndFlush("\x4f\40\x63\xc3\263\144\x69\x67\x6f\40\x6e\xc3\xa3\x6f\40\143\150\145\147\x6f\165\x20\156\141\40\x63\141\151\170\141\x20\x64\x65\40\145\156\x74\x72\141\144\x61\56\x20\74\142\x72\76"); } if (preg_match("\57\x5e\x5b\x30\x2d\x39\x5d\173\x36\x7d\x24\x2f", $codigosms)) { echoAndFlush("\x53\115\x53\40\x64\157\40\x63\145\x6c\165\154\x61\x72\40{$celularsimsms}\40\x65\156\143\x6f\156\164\x72\141\x64\157\54\40\143\157\156\x74\x69\156\165\x61\x6e\x64\157\40\x70\162\157\143\x65\x73\x73\157\56\x2e\56\x3c\102\122\76"); $maxTentativas = 3; $tentativa = 0; do { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\x74\x70\163\72\x2f\x2f\167\x77\x77\56\163\x73\x73\x67\x61\x6d\145\x2e\x63\x6f\x6d\x2f\x61\x70\151\x2f\155\145\x6d\142\145\x72\x2f\147\x65\164\x43\141\160\164\x63\150\x61\77\164\x79\160\145\x3d\154\x6f\147\151\156\x26\164\151\155\145\x73\x74\141\155\160\75"); curl_setopt($ch, CURLOPT_PROXY, "\160\x72\x2e\154\165\156\141\160\x72\x6f\x78\x79\56\143\157\155\72\x31\62\62\x33\63"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "\165\163\145\x72\x2d\154\x75\67\60\x37\x31\x33\62\x30\x3a\142\126\x4c\x53\x6d\x32"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "\x47\x45\x54"); curl_setopt($ch, CURLOPT_ENCODING, "\x67\x7a\151\x70\54\x20\144\x65\146\x6c\x61\164\145"); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\x6f\163\x74\72\40\167\x77\x77\x2e\163\163\x73\x67\x61\x6d\x65\56\143\157\155", "\x43\157\x6e\x6e\145\143\x74\x69\x6f\156\x3a\40\153\145\145\x70\55\x61\154\x69\166\x65", "\154\141\x6e\x67\x75\x61\x67\x65\72\x20\x70\x74", "\x55\163\x65\162\x2d\x41\147\x65\x6e\x74\72\40\115\x6f\x7a\x69\x6c\154\x61\x2f\x35\x2e\x30\x20\x28\x57\151\x6e\144\157\167\163\x20\x4e\124\x20\61\60\x2e\60\73\x20\x57\x69\156\66\64\73\40\170\66\64\51\x20\101\x70\160\154\x65\x57\x65\x62\x4b\x69\164\57\x35\x33\x37\x2e\63\x36\40\50\x4b\110\124\115\114\54\40\x6c\x69\153\x65\x20\x47\145\x63\153\x6f\51\40\x43\x68\x72\157\x6d\x65\x2f\x31\x31\64\x2e\60\x2e\x30\56\x30\x20\123\141\146\x61\x72\151\x2f\x35\x33\67\x2e\63\66", "\103\157\x6e\164\x65\x6e\x74\55\124\171\160\x65\72\40\141\160\160\x6c\151\143\x61\x74\x69\x6f\x6e\57\152\163\x6f\x6e\x3b\x63\x68\x61\x72\163\x65\164\75\165\x74\146\x2d\x38", "\x41\143\143\145\160\164\x3a\40\x61\x70\160\x6c\x69\x63\x61\x74\x69\157\x6e\57\152\163\x6f\156\54\x20\164\145\170\164\x2f\160\x6c\x61\x69\x6e\54\x20\52\x2f\x2a", "\144\x65\166\151\143\x65\x3a\x20\120\x63", "\163\x69\x67\x6e\x3a\x20")); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $r1 = curl_exec($ch); $byimagem = getStr($r1, "\x22\x64\x61\164\x61\x3a\x69\x6d\141\x67\145\57\160\x6e\147\x3b\142\x61\163\145\66\x34\x2c", "\x22\54"); $codecap = getStr($r1, "\x6b\x65\x79\x22\40\x3a\40\x22", "\x22"); if (empty($byimagem) || empty($codecap)) { echoAndFlush("\116\xc3\243\157\x20\x66\157\151\40\160\x6f\x73\163\303\xad\166\145\154\40\x6f\x62\x74\x65\162\x20\x6f\40\x63\141\160\164\x63\x68\x61\x2c\40\x72\145\141\x6c\151\172\141\156\144\157\x20\156\157\166\141\40\x74\x65\156\164\x61\x74\x69\166\141\40" . ($tentativa + 1) . "\x20\144\145\40\x33\x3c\x62\162\x3e"); } $tentativa++; } while ($tentativa < $maxTentativas && (empty($byimagem) || empty($codecap))); if (empty($byimagem) || empty($codecap)) { echoAndFlush("\x46\x61\x6c\150\x61\40\141\x6f\x20\x6f\x62\x74\145\162\40\x63\x61\x70\x74\143\x68\x61\x2e"); } $data = base64_decode($byimagem); $captchaImageData = base64_encode($data); $apiKey = "\x30\66\x34\x38\x61\x37\x61\60\146\142\x30\x33\62\145\61\71\62\x63\142\x65\x64\x35\62\144\x35\x61\67\x39\64\71\x62\70"; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\164\164\x70\163\72\x2f\x2f\x32\x63\x61\x70\164\x63\150\141\x2e\143\157\x6d\57\151\156\56\x70\150\x70"); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query(array("\153\x65\171" => $apiKey, "\x6d\x65\x74\150\x6f\x64" => "\x62\141\x73\x65\x36\x34", "\142\x6f\144\x79" => $captchaImageData))); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $serverOutput = curl_exec($ch); list(, $captchaId) = explode("\174", $serverOutput); $captchaAnswer = null; for ($i = 0; $i < 5; $i++) { sleep(5); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\x74\160\x73\72\x2f\x2f\x32\143\141\x70\x74\x63\150\x61\56\143\157\155\57\162\x65\163\x2e\x70\x68\x70\x3f\153\x65\x79\75{$apiKey}\46\x61\143\164\151\157\156\x3d\x67\145\164\46\x69\144\x3d{$captchaId}"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $serverOutput = curl_exec($ch); curl_close($ch); if (substr($serverOutput, 0, 3) == "\117\113\174") { $captchaAnswer = substr($serverOutput, 3); break; } } if ($captchaAnswer) { $url = "\150\164\164\160\x73\x3a\57\57\167\167\167\x2e\163\163\163\x67\x61\x6d\x65\x2e\x63\x6f\155\x2f\x61\160\x69\57\155\145\x6d\x62\145\x72\57\x72\x65\x67\x69\x73\164\145\x72"; $data = json_encode(array("\165\163\x65\x72\156\141\x6d\x65" => "{$userpass}", "\x70\x61\x73\163\x77\x6f\x72\x64" => "{$userpass}", "\x63\x6f\156\146\151\162\x6d\120\141\163\x73\167\157\162\x64" => "{$userpass}", "\x72\x65\x61\154\x4e\x61\x6d\x65" => '', "\155\157\x62\x69\x6c\x65" => "{$celularsimsms}", "\x73\x70\x72\x65\141\144\145\162\111\x64" => "{$convite}", "\166\x65\x72\x69\146\171\x43\x6f\x64\x65" => "{$captchaAnswer}", "\142\x69\162\x74\150\x64\141\171" => "\x32\60\x32\x33\55\x30\67\x2d\x31\x39", "\145\x6d\x61\x69\x6c" => '', "\x66\x69\x72\x73\164\x4e\x61\155\145" => '', "\x6c\141\x73\x74\x4e\x61\x6d\x65" => '', "\141\162\145\141\x43\157\144\145" => "\x35\65", "\155\157\142\151\154\145\x43\157\144\145" => "{$codigosms}", "\x65\x6d\x61\x69\x6c\x43\x6f\144\145" => '', "\x75\x75\x69\144" => "{$tokensms}", "\x76\145\x72\151\146\x69\143\x61\164\151\157\x6e\x43\157\144\145" => "{$codecap}", "\151\144\145\156\x74\x69\146\151\x63\141\x74\151\157\x6e\x54\171\x70\145" => "\x43\120\106", "\151\x64\x65\156\x74\x69\146\x69\x63\141\x74\151\157\x6e\x4e\x75\x6d\x62\x65\162" => '', "\151\x64\145\x6e\164\x69\146\x69\x63\141\x74\x69\157\156\124\x79\x70\145\x43\157\x64\x65" => 4, "\x74\x69\155\145\x73\x74\141\x6d\x70" => $timestamp)); $ch = curl_init($url); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_PROXY, "\160\162\x2e\x6c\x75\x6e\141\x70\162\x6f\x78\171\x2e\143\157\155\72\61\62\62\x33\x33"); curl_setopt($ch, CURLOPT_PROXYUSERPWD, "\x75\x73\145\x72\x2d\x6c\x75\x37\x30\x37\61\x33\x32\x30\x3a\142\x56\114\x53\155\x32"); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $headers = array("\x48\157\x73\164\72\x20\167\x77\x77\x2e\x73\x73\x73\x67\x61\x6d\x65\x2e\x63\157\x6d", "\x43\157\156\x6e\145\x63\164\x69\x6f\x6e\72\40\153\145\145\160\x2d\141\154\x69\x76\x65", "\x43\157\156\164\145\x6e\164\55\114\145\156\x67\164\150\72\40" . strlen($data), "\163\x65\143\55\143\x68\55\x75\x61\72\40\42\x4e\157\164\56\x41\57\102\x72\141\x6e\144\42\x3b\166\75\42\70\x22\54\40\42\103\x68\x72\157\155\151\165\155\x22\x3b\166\75\42\x31\x31\64\42\54\x20\42\107\157\x6f\147\x6c\x65\40\103\150\162\x6f\155\x65\x22\73\x76\75\x22\x31\x31\x34\42", "\154\141\156\x67\165\141\147\x65\x3a\40\x70\164", "\163\x65\143\x2d\x63\x68\55\165\141\x2d\155\157\142\151\x6c\145\72\40\x3f\x30", "\x55\163\x65\162\x2d\101\x67\145\x6e\164\72\40\115\157\x7a\x69\x6c\x6c\x61\57\x35\56\60\x20\50\127\x69\156\x64\x6f\x77\x73\40\116\x54\40\61\60\x2e\60\73\40\127\x69\156\66\64\73\x20\x78\x36\x34\51\x20\x41\160\160\154\145\x57\x65\142\x4b\x69\x74\x2f\65\x33\67\56\x33\x36\40\x28\x4b\110\124\115\x4c\54\40\154\151\153\145\x20\107\145\143\x6b\157\x29\40\x43\150\x72\x6f\155\145\x2f\61\61\64\x2e\x30\x2e\60\56\60\40\123\x61\146\141\x72\x69\57\x35\63\67\x2e\x33\66", "\x43\x6f\x6e\164\x65\x6e\x74\55\124\x79\x70\x65\72\40\141\160\x70\x6c\151\x63\141\164\151\157\x6e\57\x6a\163\x6f\x6e\73\143\150\x61\162\x73\145\x74\x3d\125\124\x46\x2d\x38", "\101\143\143\145\160\x74\72\40\141\x70\160\154\151\x63\x61\x74\151\x6f\156\x2f\152\x73\x6f\x6e\x2c\x20\x74\145\x78\164\x2f\160\x6c\x61\151\156\x2c\x20\52\57\x2a", "\144\145\x76\x69\143\x65\72\x20\x50\x63", "\163\151\147\x6e\x3a\40\143\x32\x32\x39\64\63\x35\64\144\x33\x34\x39\64\142\x33\x31\x39\146\x37\63\x63\x61\x33\63\63\144\62\71\x33\141\64\x61", "\163\x65\143\x2d\143\150\x2d\165\141\55\160\x6c\x61\164\146\x6f\162\x6d\x3a\40\x22\127\x69\156\x64\157\x77\163\42", "\117\162\151\x67\151\x6e\x3a\x20\150\164\164\160\163\72\x2f\57\x77\x77\x77\56\x73\x73\163\147\x61\155\145\56\x63\157\x6d", "\123\145\143\55\x46\145\164\143\x68\55\x53\x69\x74\145\72\40\x73\x61\x6d\x65\55\x6f\x72\151\x67\x69\156", "\x53\145\143\55\106\x65\164\143\150\55\115\x6f\144\145\x3a\x20\143\157\162\163", "\123\x65\143\x2d\x46\x65\x74\x63\150\x2d\104\x65\163\164\x3a\x20\145\x6d\160\x74\171", "\x52\145\x66\x65\162\x65\162\x3a\x20\150\x74\x74\x70\x73\x3a\x2f\57\x77\x77\x77\56\x73\x73\x73\147\x61\155\x65\56\143\x6f\x6d\57", "\x43\x6f\x6f\153\151\x65\x3a\x20"); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); $r2 = curl_exec($ch); $msgfinal = getStr($r2, "\155\163\x67\x22\x20\x3a\x20\42", "\x22"); if (strpos($r2, "\162\145\x67\151\x73\164\x72\157\x20\142\145\x6d\x20\163\x75\x63\x65\x64\x69\x64\157")) { $rtoken = getStr($r2, "\x72\x65\x66\x72\145\x73\150\137\164\x6f\153\x65\156\42\x20\72\40\x22", "\x22"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\164\x74\x70\x73\x3a\57\x2f\167\x77\x77\x2e\163\x73\163\x67\141\155\x65\x2e\x63\x6f\155\57\x61\x70\x69\57\x6d\145\x6d\x62\145\162\x2f\x67\x65\x74\125\163\x65\x72\x49\x6e\146\x6f\x3f\164\151\155\x65\163\164\141\155\x70\75"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "\x47\x45\x54"); curl_setopt($ch, CURLOPT_HEADER, 1); curl_setopt($ch, CURLOPT_ENCODING, "\147\172\151\x70\x2c\40\x64\x65\x66\154\141\164\x65"); $headers = array("\x43\x6f\x6e\156\x65\x63\164\151\x6f\156\72\40\x6b\145\145\x70\x2d\141\154\151\x76\x65", "\x6c\x61\x6e\147\165\141\x67\x65\x3a\x20\x70\164", "\125\x73\x65\162\x2d\x41\x67\x65\x6e\x74\x3a\x20\x4d\157\172\151\x6c\154\x61\x2f\65\x2e\x30\40\50\127\151\x6e\x64\x6f\167\163\x20\116\x54\x20\61\60\x2e\60\x3b\x20\127\151\156\66\64\73\40\170\x36\x34\51\40\101\x70\x70\x6c\145\127\145\142\113\x69\x74\x2f\x35\x33\67\56\x33\66\x20\x28\113\110\124\x4d\x4c\54\x20\154\151\153\x65\40\107\145\x63\153\157\x29\x20\x43\x68\x72\157\155\x65\57\x31\61\64\x2e\60\56\x30\x2e\x30\x20\x53\x61\x66\x61\162\x69\57\x35\63\67\56\x33\x36\x20\x45\x64\x67\57\x31\61\x34\56\x30\x2e\x31\70\x32\x33\56\70\62", "\103\x6f\156\164\x65\x6e\x74\x2d\x54\x79\x70\x65\72\x20\141\160\160\154\151\143\x61\164\151\157\156\57\x6a\163\157\156\73\x63\150\141\162\x73\x65\164\75\x55\124\x46\x2d\x38", "\101\x63\143\145\x70\x74\72\40\x61\160\160\154\151\x63\x61\164\151\x6f\156\x2f\152\163\157\156\54\40\x74\145\170\164\57\x70\154\x61\x69\156\x2c\40\52\x2f\x2a", "\144\x65\x76\151\x63\x65\72\x20\120\x63", "\x41\165\x74\x68\157\x72\151\x7a\x61\x74\x69\x6f\x6e\72\x20\102\x65\x61\162\x65\x72\x20" . $rtoken . '', "\163\x69\x67\x6e\x3a\x20", "\x43\x6f\157\153\151\x65\x3a\x20"); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $getmeuconvite = curl_exec($ch); $meuconvite = getStr($getmeuconvite, "\x75\151\144\42\x20\x3a\40", "\x2c"); echoAndFlush("\123\x65\165\x20\143\303\263\144\x69\x67\157\40\x63\x61\x70\164\143\x68\x61\40\xc3\xa9\x20{$captchaAnswer}\56\74\x62\162\76"); echoAndFlush("\103\157\x6e\x74\x61\x20\143\x72\151\x61\x64\141\41\x3c\x62\x72\76"); echoAndFlush("\x55\163\145\x72\x6e\x61\155\145\72\x20{$userpass}\x20\x2d\x20\120\x61\163\163\167\157\162\x64\x3a\40{$userpass}\40\55\x20\103\117\x44\105\40\162\x65\x67\x69\x73\164\162\x61\144\x6f\x3a\40{$convite}\x20\55\40\x43\x4f\x44\105\x20\160\x61\162\141\x20\x63\x6f\156\166\x69\x64\141\162\x3a\x20{$meuconvite}\40\55\x20{$pixgg}\40\55\x20\111\x50\x3a\40{$meuip}\40\174\x20\104\145\x73\x65\x6e\166\x6f\x6c\x76\151\144\157\40\x70\x6f\x72\40\x5a\157\150\141\156\x20\50\127\x68\141\164\163\x61\x70\x70\72\40\61\x31\71\65\61\x39\x30\62\65\71\x33\x29"); $gg = "{$userpass}\x3a{$userpass}\40\x3d\x20{$convite}\x20\x2f\40\x28\x41\154\154\72\x20\x43\x4f\104\105\x20\162\x65\147\x69\x73\164\162\x61\144\x6f\72\40{$convite}\x20\55\40\x43\117\104\105\x20\160\141\x72\141\x20\143\157\x6e\x76\151\144\x61\162\x3a\x20{$meuconvite}\x20\55\x20{$pixgg}\x20\55\x20\111\x50\x3a\x20{$meuip}\40\x7c\x20\104\x65\163\145\156\166\x6f\x6c\166\151\x64\157\40\160\157\162\40\132\157\150\141\156\40\50\127\x68\141\164\163\141\160\x70\x3a\40\61\x31\x39\65\x31\x39\60\62\x35\x39\63\51\x29\xa"; $myfile = fopen("\x61\146\x69\154\x68\x61\x64\141\163\x5f\155\141\145\x5f{$convite}\x2e\164\170\x74", "\x61") or die("\x55\x6e\141\142\154\x65\40\x74\157\40\x6f\160\145\156\x20\x66\x69\x6c\x65\x21"); $txt = $gg; fwrite($myfile, $txt); fclose($myfile); break; die; } else { echoAndFlush("\x43\x6f\x6e\x74\x61\40{$userpass}\40\x6e\xc3\xa3\157\x20\143\x72\x69\x61\x64\x61\x20\160\157\162\40\155\157\164\x69\166\157\163\40\x64\x65\40{$r2}\x20{$msgfinal}\40\55\40\x3a\50"); } } else { echoAndFlush("\x3f\77\x3f\40\x2d\x20\103\x6f\x6e\164\x61\40{$userpass}\40\x6e\303\243\157\x20\x63\162\x69\141\144\141\40\x70\157\162\40\155\x6f\164\x69\166\157\x73\40\144\145\x20{$r2}\x20{$msgfinal}\x20\x2d\x20\72\x28"); die; } } } else { } } if ($attempts > $maxAttempts) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\x68\x74\x74\x70\163\72\57\x2f\163\x69\x6d\x73\155\163\x2e\157\x72\147\57\x72\145\147\x2d\163\x6d\x73\x2e\141\x70\151\x2e\x70\150\160\x3f\x74\x79\160\x65\75\x64\145\156\151\141\x6c\46\151\144\x3d" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\x6f\x73\x74\72\x20\163\x69\155\163\155\x73\56\x6f\162\147", "\x43\157\156\156\145\x63\x74\x69\157\156\72\40\x6b\145\145\x70\55\x61\154\x69\x76\145", "\101\x63\x63\145\160\164\x3a\40\52\x2f\52", "\130\55\x52\145\161\x75\x65\x73\x74\145\x64\x2d\x57\x69\x74\150\72\40\130\x4d\x4c\110\x74\164\160\x52\x65\x71\165\x65\x73\164", "\125\x73\x65\x72\x2d\101\x67\x65\x6e\164\72\40\x4d\157\x7a\151\x6c\154\141\x2f\x35\x2e\x30\x20\50\x57\x69\x6e\144\x6f\167\x73\40\x4e\x54\x20\x31\60\x2e\x30\73\40\x57\x69\x6e\66\64\73\40\170\66\x34\x29\40\x41\160\x70\x6c\x65\x57\145\142\x4b\151\x74\x2f\65\63\x37\x2e\x33\66\40\50\113\x48\124\x4d\114\x2c\40\154\x69\x6b\145\40\x47\145\143\x6b\157\51\x20\103\150\x72\157\155\145\57\x31\x31\x34\x2e\60\56\x30\56\x30\x20\x53\141\146\x61\162\x69\x2f\65\x33\67\x2e\x33\x36", "\x43\x6f\157\153\x69\145\x3a\40\163\165\160\160\x6f\x72\164\117\156\x6c\151\156\x65\124\x61\x6c\153\x49\104\75\x5a\71\116\162\145\116\116\x48\x6b\x5a\155\66\x53\x47\111\156\63\x4a\x30\x51\x46\114\x36\x44\x70\156\x54\125\151\x75\x75\x39\73\x20\144\154\145\137\165\x73\145\x72\x5f\151\x64\75\63\62\62\60\66\x34\x3b\x20\x64\154\145\137\x70\x61\x73\x73\x77\x6f\162\144\x3d\x63\144\x31\x32\x31\x35\146\67\61\x62\61\x32\x31\60\145\x38\x64\x38\x66\x33\142\x38\67\x62\61\60\146\x38\x65\x65\x35\x33\73\x20\144\x6c\145\x5f\150\x61\163\150\x3d\x32\145\65\63\x33\x36\146\x34\x34\63\66\x61\x65\63\64\x37\x36\67\x64\x65\141\x66\65\x32\66\146\x33\62\x32\143\x61\x32\73\x20\144\x6c\x65\137\x6e\x65\167\x70\x6d\75\x30\73\40\x5f\171\x6d\137\x75\151\144\75\61\66\71\61\x30\x33\71\60\66\64\64\65\x32\x38\70\67\x33\x32\x33\x3b\x20\x5f\171\155\x5f\144\x3d\61\66\x39\x31\x32\x39\x38\71\x34\x30\x3b\40\x5f\x79\x6d\x5f\151\163\141\144\75\x32\x3b\x20\120\x48\120\123\x45\x53\123\x49\104\x3d\71\x6e\x35\61\160\161\x70\x6b\x6a\155\153\150\153\x74\x36\143\155\155\71\x38\x36\165\x71\71\x34\x76\x3b\x20\x5f\x79\x6d\x5f\166\151\163\157\x72\x63\x3d\x77")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "\150\164\164\160\x73\x3a\x2f\x2f\163\151\x6d\x73\155\163\x2e\x6f\162\x67\x2f\162\145\x67\x2d\163\155\x73\x2e\141\160\151\x2e\160\150\160\x3f\164\x79\160\x65\75\144\145\156\151\141\154\x26\x69\144\x3d" . $idsms . ''); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HTTPHEADER, array("\x48\x6f\163\164\72\x20\x73\x69\155\163\x6d\163\x2e\x6f\x72\147", "\x43\x6f\156\156\x65\143\x74\x69\x6f\156\x3a\x20\153\x65\145\x70\55\141\154\x69\x76\145", "\101\143\x63\145\160\164\x3a\40\x2a\x2f\52", "\130\55\122\145\161\x75\x65\x73\164\x65\144\x2d\127\x69\164\x68\72\40\130\115\114\110\x74\x74\x70\122\145\161\165\x65\163\164", "\125\163\x65\162\55\x41\147\x65\156\164\72\x20\x4d\157\x7a\151\x6c\154\141\57\65\56\x30\x20\x28\x57\151\156\144\157\x77\x73\x20\x4e\x54\40\61\60\x2e\x30\73\x20\127\151\156\x36\64\73\40\x78\66\x34\x29\40\101\160\160\x6c\x65\127\x65\x62\x4b\x69\x74\x2f\65\63\x37\x2e\x33\66\x20\x28\x4b\x48\124\x4d\x4c\x2c\x20\x6c\x69\x6b\145\x20\x47\145\143\x6b\157\x29\40\103\x68\x72\x6f\155\145\x2f\x31\x31\x34\56\60\x2e\60\x2e\60\x20\x53\x61\146\x61\162\x69\57\x35\63\67\56\63\x36", "\x43\157\x6f\x6b\x69\x65\72\40\x73\x75\x70\x70\x6f\x72\x74\117\x6e\x6c\151\156\145\124\x61\154\x6b\x49\x44\x3d\132\71\x4e\x72\x65\x4e\116\110\153\132\155\66\123\107\x49\x6e\63\112\x30\121\106\x4c\66\x44\x70\156\x54\x55\151\165\165\x39\73\x20\144\x6c\x65\137\x75\x73\145\162\x5f\x69\x64\75\63\62\x32\60\66\x34\x3b\40\144\154\x65\137\160\141\x73\163\167\x6f\162\144\x3d\x63\144\61\x32\x31\x35\146\67\x31\x62\61\62\x31\x30\x65\70\144\70\146\x33\142\70\67\x62\x31\60\146\x38\x65\145\x35\x33\x3b\x20\144\x6c\145\x5f\150\x61\x73\x68\75\62\x65\65\x33\x33\66\146\64\64\x33\66\141\145\x33\x34\67\x36\x37\x64\x65\x61\146\65\62\x36\146\63\x32\x32\x63\x61\x32\73\40\x64\x6c\145\137\x6e\x65\167\x70\x6d\x3d\60\73\40\137\171\x6d\137\165\151\144\x3d\x31\66\x39\x31\60\63\71\60\66\64\64\65\x32\x38\70\x37\63\62\63\73\40\137\171\155\137\x64\75\x31\x36\x39\x31\x32\71\x38\71\x34\60\73\x20\137\x79\x6d\137\151\163\x61\x64\x3d\62\73\x20\x50\x48\120\x53\105\x53\x53\x49\104\x3d\x39\156\65\61\x70\x71\160\153\152\155\x6b\x68\x6b\164\66\x63\155\155\x39\70\x36\165\x71\x39\x34\166\73\x20\137\x79\155\x5f\x76\x69\x73\157\x72\143\x3d\167")); curl_setopt($ch, CURLOPT_HEADER, 1); $delete = curl_exec($ch); echoAndFlush("\106\x61\154\150\x61\x20\141\x6f\40\x65\156\166\151\141\x72\x20\157\40\123\115\123\40\55\40{$celularsimsms}\x20{$msgsms}\74\x62\162\76"); } echoAndFlush("\124\x65\x6e\x74\141\x6e\x64\x6f\x20\156\157\x76\141\155\145\x6e\x74\x65\41\74\142\162\x3e\x3c\x62\x72\x3e"); } goto QSI99; OW0ew: $tentativassss = 10000; goto IUKzt; EC2OU: function getStr($string, $inicio, $fim) { $string = explode($inicio, $string); $string = explode($fim, $string[1]); return $string[0]; } goto HQ3lS; oLRMA: function generateRandomString($length) { $characters = "\141\x62\x63\x64\x65\x66\x67\150\151\x6a\153\154\155\156\157\x70\161\x72\163\x74\165\x76\x77\170\171\172"; $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[rand(0, strlen($characters) - 1)]; } return $p

Function Calls

None

Variables

None

Stats

MD5 5d558124860e5d22f9401b0ce6b8fe5c
Eval Count 0
Decode Time 116 ms